Threat Bus
A threat intelligence dissemination layer for open-source security tools. Threat Bus is a pub-sub broker for threat intelligence data, allowing seamless integration of threat intel platforms like OpenCTI or MISP with detection tools like Zeek or VAST. It transports indicators and sightings in STIX-2 format, features a plugin-based architecture for easy extension, and offers snapshotting for requesting threat intelligence data for specific time ranges.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Curated datasets for developing and testing detections in SIEM installations.
Scan files or process memory for Cobalt Strike beacons and parse their configuration.
Open-source initiative providing malicious and benign datasets to expedite data analysis and threat research.
HoneyDB is a honeypot-based threat intelligence platform that provides real-time insights into attacker behavior and malicious activity on networks.
A free and open-source OSINT framework for gathering and analyzing data from various sources
A daily collection of IOCs from various sources, including articles and tweets.
Sigma is a generic and open signature format for SIEM systems and other security tools to detect and respond to threats.
Repository containing IoCs related to Volexity's threat intelligence blog posts and tools.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.